Summary
Distributed Computing Environment (DCE) services running on the remote host can be enumerated by connecting on port 135 and doing the appropriate queries.
An attacker may use this fact to gain more knowledge about the remote host.
Solution
filter incoming traffic to this port.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Microsoft Update to Improve Cryptography and Digital Certificate Handling (2854544)
- MS Windows Fraudulent Digital Certificates Spoofing Vulnerability (2641690)
- Microsoft Internet Explorer Anti-XSS Filter Vulnerabilities
- Microsoft .NET 'ASP.NET' Cross-Site Scripting vulnerability
- CA Unicenter's File Transfer Service is running